John Shier is a Field CTO Commercial at Sophos with more than two decades of cybersecurity experience. He’s passionate about protecting consumers and organizations from advanced threats, and has researched everything from costly ransomware to illicit dark web activity, uncovering insights needed to strengthen proactive cybersecurity defenses.
John is often consulted by press, and has been quoted in publications like Reuters, WIRED, Fortune, CNN, The Hill, Fast Co, Yahoo, and more. He’s also a frequent speaker at industry events like RSA Conference, Infosec, Cebit, Gitex, and more.
The data was stolen from a company that was handling data on behalf of the police, who relied on that supplier to keep it safe and secure. In our opinion, this fits the broader definition of a supply chain attack because it uses a third-party as a proxy to attack an organisation’s data or services.
A supply chain attack led to personal information being stolen in a major UK police data breach. But where has the data gone?